{"uuid": "068741bc-30a6-4ca9-a533-1e3b34aabd47", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "cve-2026-7330", "type": "seen", "source": "https://infosec.exchange/users/offseq/statuses/116538135511321220", "content": "\ud83d\udee1\ufe0f CVE-2026-7330: HIGH severity stored XSS in thedark Auto Affiliate Links (\u22646.8.8) lets unauthenticated attackers inject scripts via AJAX endpoint. WP admins at risk \u2014 update/disable plugin! https://radar.offseq.com/threat/cve-2026-7330-cwe-79-improper-neutralization-of-in-dc918ba5 #OffSeq #WordPress #Infosec #XSS", "creation_timestamp": "2026-05-08T09:00:29.100807Z"}